nanog mailing list archives

Re: SHA1 collisions proven possisble

From: Chris Adams <cma () cmadams net>
Date: Mon, 27 Feb 2017 08:18:35 -0600

Once upon a time, valdis.kletnieks () vt edu <valdis.kletnieks () vt edu> said:

There's only 2 certs.  You generate 2 certs with the same hash, and *then* get
the CA to sign one of them.


The point is that the signed cert you get back from the CA will have a
different hash, and the things that they change that cause the hash to
change are outside your control and prediction.

-- 
Chris Adams <cma () cmadams net>

Current thread:

Re: SHA1 collisions proven possisble, (continued)
- - - Re: SHA1 collisions proven possisble Brett Frankenberger (Feb 26)
    - Re: SHA1 collisions proven possisble Matt Palmer (Feb 26)
    - RE: SHA1 collisions proven possisble Keith Medcalf (Feb 26)
    - RE: SHA1 collisions proven possisble Jon Lewis (Feb 27)
    - Re: SHA1 collisions proven possisble valdis . kletnieks (Feb 27)
    - Re: SHA1 collisions proven possisble Patrick W. Gilmore (Feb 26)
    - Re: SHA1 collisions proven possisble Eitan Adler (Feb 26)
    - Re: SHA1 collisions proven possisble Randy Bush (Feb 27)
    - Re: SHA1 collisions proven possisble Matt Palmer (Feb 26)
    - Re: SHA1 collisions proven possisble valdis . kletnieks (Feb 27)
    - Re: SHA1 collisions proven possisble Chris Adams (Feb 27)
  - Re: SHA1 collisions proven possisble Tei (Feb 24)